Open sjackson0109 opened 1 year ago
I tried to change the resource, import it and then re-plan changes...
Clearly aztfmod is not using the attribute, it's displaying null
.
Terraform will perform the following actions:
# module.aztfmod.module.azurerm_firewall_policies["uks_hub"].azurerm_firewall_policy.fwpol will be updated in-place
~ resource "azurerm_firewall_policy" "fwpol" {
- base_policy_id = "/subscriptions/REDACTED/resourceGroups/HUB/providers/Microsoft.Network/firewallPolicies/TEST-fwnetrc-uks-org-azfw-policy" -> null
id = "/subscriptions/REDACTED/resourceGroups/HUB/providers/Microsoft.Network/firewallPolicies/TEST-fwnetrc-uks-hub-azfw-policy"
name = "TEST-fwnetrc-uks-hub-azfw-policy"
tags = {}
# (9 unchanged attributes hidden)
# (1 unchanged block hidden)
}
Plan: 0 to add, 1 to change, 0 to destroy.
TIP: scroll to the right of the base_policy_id
line...
Is there an existing issue for this?
Description
Searched and searched, i am unable to specify a parent_policy_key inside azurerm_firewall_policies.; in the aztfmod azurerm_firewall module, i did find
base_policy_id
but this nullifies an existing record (imported resource).This capability is desired urgently.
REGION 1 ORG_POLICY - contains global allow/deny lists - rules to be automated later, from country specific ipdb entries. REGION 1 HUB POLICY - contains region specific NAT, NET and APP rules.
Region 1 and 2 policies of course should inherit the ORG policy!
New or Affected Resource(s
azurerm_firewall_policies
Current Versions:
Terraform v1.5.5 on windows_amd64
Potential Configuration file
References
No response